Using Data Theorem’s Cloud Secure to protect cloud native applications

Posted on September 14, 2022 by dstrom

We tested Data Theorem’s Cloud Native Application Protection Platform called Cloud Secure in September 2022. Cloud Secure provides two major advantages:

It includes extensive and free CSPM protection to any customer
It automates cloud hacking with its Hacker Toolkits. These automate full-stack attacks of popular data breaches. This option starts at $4000 for an annual subscription.

Cloud Secure is one of five products that make up a CNAPP solution that offers a full stack security approach to all their cloud-based applications. With full stack security, customers can visualize and take action on all their first and third-party APIs, cloud resources, mobile, and web applications built on cloud-native services. Data Theorem has a central analysis, policy and reporting engine that works across its product line. They protect workloads on Amazon Web Services, Google Cloud Platform, Kubernetes clusters and Microsoft Azure clouds.

Cloud Secure is available Cloud Secure is available for a 30-day free trial, and can be purchased from the three major cloud marketplaces, with full pricing details available here.

Adaptive access and step-up authentication with Thales SafeNet Trusted Access

Posted on November 5, 2019 by dstrom

SafeNet Trusted Access from Thales is an access management and authentication service. By helping to prevent data breaches and comply with regulations, it allows organizations to migrate to the cloud simply and securely.

MobilePass+ is available on iPhones and Android smartphones and Windows desktops. More information here.

Pricing starts at $3/user/month for all tokens and services.

How to protect your mobile apps using Zimperium’s zIAP SDK (screencast)

Posted on April 16, 2019 by dstrom

If you are looking for a way to protect your Android and iOS apps from malware and other mobile threats, you should look at Zimperium ‘s In-App Protection (zIAP) SDK . It supports both Apple X-Code for iOS apps and Android Studio for those apps. One of the advantages of zIAP is that you don’t have to redeploy your code because changes are updated dynamically at runtime and automatically pushed to your devices. zIAP ensures that mobile applications remain safe from cyber attacks by providing immediate device risk assessments and threat alerts. Organizations can minimize exposure of their sensitive data, and prevent their customers and partners’ data from being jeopardized by malicious and fraudulent activity. I tested the product in April 2019.

Pricing starts for 10K Monthly Active Devices at $12,000 per year, with steep quantity discounts available.

https://go.zimperium.com/david-strom-ziap

Keywords: strom, screencast review, webinformant, zimperium, mobile security, app security, Android security, iOS security

Screencast review: Managing enterprise mobile device security with Zimperium

Posted on December 13, 2018 by dstrom

Zimperium is very useful in finding mobile device risks and fixing security issues across the largest enterprise networks.

It includes phishing detection and has the ability to run on both a variety of different cloud infrastructures as well as on-premises. It has deep on-device detection and a fine-grained collection of access roles. It uses a web-based console that controls protection policies and configuration parameters. Reports can be customized as well for management and compliance purposes. I tested the software in December 2018 on a sample network with both Android and iOS devices of varying vintages and profiles.

Pricing decreases based on volume starting at $60/year/device

Keywords: David Strom, web informant, video screencast, mobile device security, mobile device manager, MDM, mobile threat management, Knox security, iOS security

How to protect your emails using Inky Phish Fence

Posted on November 14, 2017 by dstrom

Inky Phish Fence is an anti-phishing platform available for many email systems and can detect and defend against many types of suspicious emails and phishing attacks. It comes as an add-in for Outlook for Exchange/Office 365 accounts. It is also available for G Suite and Gmail as a Chrome extension. Enterprise users would most likely use a purely server-side gateway version where the checks are performed automatically and the warnings get inserted into the actual email. The consumer add-ins are free, the corporate version starts at a few dollars per month per user with quantity discounts available.

I tested the product in November 2017.

And you can download a white paper that I wrote for Inky about the history and dangers of phishing and where their solution fits in.

Protecting your Windows endpoints with VIPRE Endpoint Security Cloud

Posted on October 3, 2017 by dstrom

VIPRE offers a nice package for small and medium-sized businesses that is easy to use and manage with a wide array of protective features.

We tested VIPRE on a series of different Windows clients during September 2017. It supports all versions of Windows desktop since v7 and servers since v2008R2. It currently protects more than six million endpoints and finds more than a million daily malware infections. VIPRE also sells an on-premises endpoint solution that also includes patch management features.

Pricing starts from $30/yr/seat with significant volume discounts. VIPRE offers free phone based US support during business hours.

Detecting malware with Sophos XG Firewall and Security Heartbeat

Posted on November 18, 2015 by dstrom

Sophos has developed an interesting and innovative new security product that bridges the gap between its endpoint and network protection products. Called Security Heartbeat, it requires a Sophos XG firewall and any of Sophos’ cloud-based endpoint protection agents. The entry level firewalls start at $300 and larger models can go for ten times that, with support contracts extra.

We tested the Sophos products during November 2015. Sophos is not as well known as other firewall vendors, but the use of the heartbeat is such an obvious benefit and the kind of innovation that you wonder why it hasn’t been done before.

How EVault’s Hybrid Cloud Backup compares with CommVault

Posted on November 6, 2015 by dstrom

EVault’s Hybrid Cloud Data Protection covers a wider range of operating systems, features and enterprise applications than CommVault’s Simpana. EVault’s web-based portal is also more flexible and useful too. We tested these backup products during November 2015, connecting to a SQL Server instance running on a Windows Server 2008.

Click here for more info.

Using Seagate Hybrid Cloud Data Protection

Posted on August 5, 2015 by dstrom

The Seagate Hybrid Cloud Data Protection is a comprehensive portfolio, designed to make it easy for data protection to scale with the unstoppable demands of today’s data growth. The full-service data protection portfolio consists of agents, backup appliances, software tools and application-aware plug-ins that connect to each other and to the cloud.

We tested the product in July and August 2015 with a PNP600 appliance.

Prices start at under $5000

Seagate.com

A Guided Tour of the SANsymphony-V Software Defined Storage Platform From DataCore Software

Posted on May 26, 2015 by dstrom

DataCore’s storage virtualization software, SANsymphony-V, maximizes the availability, performance and utilization of disks in data centers large and small. Use it to manage on-premises storage or build a cloud storage infrastructure.

We looked at version 9 in June 2012 and version 10 in May 2015.
http://www.datacore.com
Pricing: DataCore-authorized solution providers offer packages starting under $10K for a two-node, high-availability environment.
Requirements: Windows Server 2012 R2

Take a look at another screencast review of Datacore’s software-defined storage solution here.

Web Informant

David Strom's musings on technology

Category Archives: Screencast videos